Protection & Endpoints
Learn how to manage endpoints.
1 - What is an endpoint?
An endpoint has 3 properties:
- traffic source: it indicates the origin of the traffic directed to the endpoint
- traffic usage: it indicates the functional context of the resources included in the endpoint, to separate different parts of your website and/or mobile app
- name: a name of your choice, to identify the traffic directed to the endpoint in the dashboard
Fine-grained protection
DataDome uses the traffic source and traffic usage parameters to apply the right algorithms and detect specific threats.
We define the following values for the sources:
| Value | Description |
|---|---|
| Web Browsers | requests coming from all Browsers (mobile or desktop) on websites or APIs |
| Mobile Apps | requests coming from mobile apps (iOS, Android) on APIs |
| APIs | automated requests coming from machine/scripts on APIs |
We currently propose the following usages:
| Name | Description | Examples | HTTP methods |
|---|---|---|---|
| General | Default endpoint type. All URLs that are not included in another endpoint configuration. | domain.com/ | All |
| Login | Login, account creation or forgot password forms. | domain.com/login domain.com/signup domain.com/forget | All |
| Forms | All URLs with forms, could be password forms, troubleshooting forms etc. Except the Account Creation form. | domain.com/contact domain.com/report domain.com/comments | All |
| Account Creation | All URLs related to the account creation on a website/app | domain.com/signup, domain.com/account/signup | All |
| Cart | All URLs related to the basket in e-commerce website | domain.com/cart, domain.com/add-to-cart | All |
| Payment | All URLs related to the payment processing on e-commerce website/app | domain.com/payment, domain.com/checkout | All |
| RSS | RSS/Atom feeds fetched by a desktop application or an online aggregator. | domain.com/feed.json domain.com/rss.xml | All |
2 - How to manage endpoints?
Deleted endpoint visualization
If you just deleted an endpoint, you will be still able to see it in the analytics screens of the dashboard since this endpoint matches traffic during the last 30-days. After the 30-days, the corresponding deleted endpoint won't appear anymore on the analytics screens.
Default endpoint
By default, one endpoint is pre-set in your account: “Web (default)”.
The endpoint “Web (default)” cannot be reordered or deleted.
Go to Management > Endpoints
A list of endpoints connected to your account is displayed.
The endpoint rules follow the top-down execution method.
Admin view
Editor view
Protection status legend
Roles & actions
| Role | Add | Edit | Reorder | Activate/deactivate protection | Activate/deactivate detection |
|---|---|---|---|---|---|
| Admin | YES | YES | YES | YES | YES |
| Editor | - | - | - | - | - |
| Viewer | - | - | - | - | - |
3 - Endpoint creation guidelines
Endpoint Creation screen
The following fields are following PCRE regular expression syntax:
- Domain
- Path Inclusion
- Path Exclusion
- UA Inclusion
For example, here you can find a pattern of any relevant path for payment:
^(https?:\/\/)?([\w.-]+)\.(\w+)(\/[\w.-]*)*\/(pay|payment|checkout|purchase|order)(\/|$|\?)
4 - How to analyze traffic?
The percentage of traffic is indicated for each endpoint. It includes normal users & bots and is calculated for the last 20 minutes.
You can analyze the endpoint’s traffic by clicking on Actions > View Traffic Details to display the following information:
- An overview of the last 24 hours with the number of requests, URLs and IPs, the top 2 IP owners, and the top 3 UA.
- The last 100 requests.
You can also analyze through the "Explore" view (Read more about the Explore view.
Updated 22 days ago